Posted 02/25/2015 at 12:11 PM
Posted 2 years ago
Over 1 million WordPress sites are at risk of attack via SQL injection, due to a vulnerability in a widely used plugin.
The plugin, WP-Slimstat was found to have the vulnerability.
Version 3.9.5 and lower of the plugin could allow attackers to take over a site with the plugin installed and activated.
WP-Slimstat is an analytics plugin which gives users real-time website activity reports.
The plugin has been downloaded over 1.3 million times.